Hi,
I think CISCO routers tunnel Appletalk data thru' IP, and Novell servers
have software doing this for IPX.
I'm interested in solutions to a related problem. How do we tunnel IP
packets, with encapsulated data, from an external network connected by a
firewall, thru' an internal network, to another "quarantined" network ? I
want to permit clients on the Internal net, telnet and FTP access to the
External net. I want to prevent clients in the quarantine net from accessing
the Internal net.
( )
external net--- FW1----(Internal net)-------FW2---quarantined network
( )
FW1 should permit telnet & FTP clients in the Internal network access to
servers on the external net.
FW1 and FW2 should also permit IP packets, encapsulating AppleTalk, ( or
perhaps IPX, or even IPSec), between external and quarantined networks.
FW1 and FW2 should permit nothing else.
I could use a simple filtering router for FW2 to filter everything but
encapsulating packets traveling between FW1 and FW2. What are the risks to
the internal network from the quarantined network?
Can one implement FW1 with any commercially or otherwise available software?
Gauntlet, or FWTK + Darren Reed's filter? The problem with the latter
combination, I think, is that it can't be done without enabling ip
forwarding on the FW1.
Any info/pointers on this would be appreciated.
Regards
P D Mallya
Prabhakar D. Mallya
Infosys Technologies Limited, Bangalore, India
Phone : 91-80-8520261 e-mail : pdmallya @
inf .
com
______________________________ Reply Separator _________________________________
Subject: Other Protocols over TCP/UCP
Author: Eric Wieling <ewieling @
hephaestus .
icorp .
net> at SMTP_GW
Date: 28/8/96 12:38 AM
I know about "NetBIOS over TCP/UCP".
Is there anything similar to "NetBIOS over TCP/UDP" for AppleTalk or
IPX/SPX?
Thanks!
--Eric
--
Eric Wieling
Advanced Network Research
InterCommerce Corporation
Pager: 800-758-3680
The world needs no help seeing a fool for what they are.
|
|
